$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS59272.roa File: AS59272.roa (raw, json) Hash identifier: uzUksXsArQjYPKuCqpoqJM+umC30yGZuYTDuAmRObhU= Subject key identifier: 66:05:8E:33:DF:ED:46:E5:66:1E:B8:BF:29:20:0B:A0:1F:EF:2C:B8 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3EFEA9D546CD08724A839BAE14FB2B0DF9C20088 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59272.roa Signing time: Sat 02 May 2026 21:21:01 +0000 ROA not before: Sat 02 May 2026 21:16:01 +0000 ROA not after: Sat 01 May 2027 21:21:01 +0000 asID: 59272 IP address blocks: 103.81.246.0/24 maxlen: 24 103.81.248.0/23 maxlen: 24 103.225.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:fe:a9:d5:46:cd:08:72:4a:83:9b:ae:14:fb:2b:0d:f9:c2:00:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:16:01 2026 GMT Not After : May 1 21:21:01 2027 GMT Subject: CN=66058E33DFED46E5661EB8BF29200BA01FEF2CB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:86:06:1f:dd:e9:a7:97:22:05:17:a2:4d:c0: 81:92:f0:ee:2a:73:6a:5f:80:86:03:c8:33:26:a2: 9f:de:a7:b5:88:38:b6:0e:1c:f8:93:d3:17:63:9f: 24:c6:e1:52:a4:38:2a:6f:e4:ca:85:0c:75:06:bb: 25:05:ff:b2:92:43:2b:98:86:8b:3c:65:b8:2d:52: e3:5c:fe:9d:3b:f3:ae:eb:15:04:89:e1:1d:ba:96: 67:5f:2f:2f:a7:13:fc:43:eb:dd:8a:b6:f1:3d:4a: cc:73:2e:6f:c4:d4:7d:fa:4a:ec:52:7d:53:65:b7: de:53:24:88:b7:26:b1:06:83:90:cc:d3:7e:65:ce: 8c:c9:4b:59:c5:80:b1:c2:f3:fd:67:55:7f:a9:bf: 25:ed:44:49:41:34:d3:b4:53:87:4e:b8:c5:13:c7: 5d:9a:d8:98:e9:2b:32:0f:39:77:b8:ed:44:71:b7: 89:03:69:7f:01:cc:3b:80:7a:e1:b0:da:34:6d:b3: 70:de:f5:b8:fc:36:46:c7:fd:fe:c7:c7:fc:21:91: 27:b5:2f:78:80:21:9b:4c:25:f8:85:19:d7:82:57: 00:7b:5d:e0:12:39:27:c9:92:76:c6:2d:4b:01:de: c6:af:6e:14:b1:d5:6e:5b:b5:99:67:0f:d9:fe:8c: 79:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:05:8E:33:DF:ED:46:E5:66:1E:B8:BF:29:20:0B:A0:1F:EF:2C:B8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS59272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.246.0/24 103.81.248.0/23 103.225.175.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:9c:4a:cb:c9:52:73:9c:c6:7c:6b:f2:a5:24:57:a3:27:e2: 6d:15:61:17:b0:5c:23:e3:ad:bd:a2:85:c7:41:db:05:36:03: 24:d3:9c:fd:dc:88:7d:c5:f3:36:a5:a5:a1:33:83:f4:90:28: ed:98:7b:6f:7a:bc:a7:8e:7f:4e:2f:1d:0f:8e:11:78:71:f3: 93:5c:b4:5a:a6:e8:16:2c:d3:af:04:76:5f:bd:cd:6a:92:ed: 5d:0c:25:cd:9e:f5:29:4f:2e:f8:bb:8e:90:8f:db:1d:a3:6b: 5e:41:cd:51:eb:b6:98:84:4c:e0:56:fd:3b:4a:54:36:78:aa: 27:27:ed:b4:0b:52:5a:05:39:27:dd:a1:55:f1:d6:ce:9b:20: 4a:9d:26:d8:5f:8f:91:d3:d2:15:ac:2b:f8:34:af:75:01:2f: 7b:97:ac:34:c9:bc:77:f3:46:60:e8:00:99:06:07:ea:2d:17: d0:cd:f4:58:03:06:47:7d:5a:7e:14:9b:bb:54:49:14:eb:6c: cf:d1:25:92:d6:29:f4:b3:bb:2a:97:72:89:5f:e2:ac:14:d9: 4f:f4:75:75:b4:4a:b9:66:03:c5:72:31:b3:c0:4b:2a:cc:ab: cc:60:dd:f1:48:f2:ca:41:5f:58:32:2a:35:9a:91:33:60:10: 7b:fb:4d:1c -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUPv6p1UbNCHJKg5uuFPsrDfnCAIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTYwMVoX DTI3MDUwMTIxMjEwMVowMzExMC8GA1UEAxMoNjYwNThFMzNERkVENDZFNTY2MUVC OEJGMjkyMDBCQTAxRkVGMkNCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaGBh/d6aeXIgUXok3AgZLw7ipzal+AhgPIMyain96ntYg4tg4c+JPTF2Of JMbhUqQ4Km/kyoUMdQa7JQX/spJDK5iGizxluC1S41z+nTvzrusVBInhHbqWZ18v L6cT/EPr3Yq28T1KzHMub8TUffpK7FJ9U2W33lMkiLcmsQaDkMzTfmXOjMlLWcWA scLz/WdVf6m/Je1ESUE007RTh064xRPHXZrYmOkrMg85d7jtRHG3iQNpfwHMO4B6 4bDaNG2zcN71uPw2Rsf9/sfH/CGRJ7UveIAhm0wl+IUZ14JXAHtd4BI5J8mSdsYt SwHexq9uFLHVblu1mWcP2f6MeQ8CAwEAAaOCAdcwggHTMB0GA1UdDgQWBBRmBY4z 3+1G5WYeuL8pIAugH+8suDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNTkyNzIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgAB MBIDBABnUfYDBAFnUfgDBABn4a8wDQYJKoZIhvcNAQELBQADggEBAIycSsvJUnOc xnxr8qUkV6Mn4m0VYRewXCPjrb2ihcdB2wU2AyTTnP3ciH3F8zalpaEzg/SQKO2Y e296vKeOf04vHQ+OEXhx85NctFqm6BYs068Edl+9zWqS7V0MJc2e9SlPLvi7jpCP 2x2ja15BzVHrtpiETOBW/TtKVDZ4qicn7bQLUloFOSfdoVXx1s6bIEqdJthfj5HT 0hWsK/g0r3UBL3uXrDTJvHfzRmDoAJkGB+otF9DN9FgDBkd9Wn4Um7tUSRTrbM/R JZLWKfSzuyqXcolf4qwU2U/0dXW0SrlmA8VyMbPASyrMq8xg3fFI8spBX1gyKjWa kTNgEHv7TRw= -----END CERTIFICATE-----Generated at Sun May 3 00:39:49 2026 by rpki-client